Manifest
$ rpki-client -vvf repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.mft
File: BD5D46B5BFE72F2AA1188A9096B10E01474244B1.mft (raw, json)
Hash identifier: ZvgvoSFVSyhF9FItq1x/2//YKUtX0CNv5EgpQDRHrZg=
Subject key identifier: D5:26:9B:BC:49:BA:C0:EE:C5:86:89:ED:49:FA:C1:9A:5B:16:50:73
Authority key identifier: BD:5D:46:B5:BF:E7:2F:2A:A1:18:8A:90:96:B1:0E:01:47:42:44:B1
Certificate issuer: /CN=BD5D46B5BFE72F2AA1188A9096B10E01474244B1
Certificate serial: 36F0F615FE89CC4412A717FA7B75736BE37B1E26
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.mft
Manifest number: 020B
Signing time: Fri 28 Mar 2025 11:01:22 +0000
Manifest this update: Fri 28 Mar 2025 10:56:22 +0000
Manifest next update: Mon 31 Mar 2025 14:24:22 +0000
Files and hashes: 1: 3130332e3130352e3139352e302f32342d3234203d3e20313336383738.roa (hash: OJOE/7q58wvHc3CR/aklsOVCRBylBzz1DBZTUwMunAw=)
2: 3130332e3130352e3139332e302f32342d3234203d3e20313337333136.roa (hash: CbT0hYzhheMonOPehO3no/mVI5bpvSbduL61mPpJvUQ=)
3: BD5D46B5BFE72F2AA1188A9096B10E01474244B1.crl (hash: rXJn/rZFsPCrwDjce/IinRuj71mlrpP9UXKos0BFkkk=)
4: 3130332e3130352e3139342e302f32342d3234203d3e20313336383738.roa (hash: S9T4Njr1S5t2cL0qzbEw2qPQzlgOAecG0HGE00Slwz4=)
5: 3130332e3130352e3139322e302f32342d3234203d3e20313336383738.roa (hash: A4bow00kXpDEKr/WErM916lCjp+QBUm74+vgJ+iFoLw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:f0:f6:15:fe:89:cc:44:12:a7:17:fa:7b:75:73:6b:e3:7b:1e:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD5D46B5BFE72F2AA1188A9096B10E01474244B1
Validity
Not Before: Mar 28 10:56:22 2025 GMT
Not After : Mar 31 14:24:22 2025 GMT
Subject: CN=D5269BBC49BAC0EEC58689ED49FAC19A5B165073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:9d:5e:4e:5d:db:9d:62:14:24:47:43:02:c7:
d6:e9:14:6b:bd:3b:b8:52:ee:b1:aa:f1:6d:d4:af:
b1:19:5a:5f:5c:b1:2d:4d:be:b9:53:81:a2:56:7c:
be:0d:c1:f8:fb:7f:29:97:ec:ab:9e:4f:ba:6a:2b:
2b:cd:58:34:8c:3c:8b:12:8b:cd:08:32:da:15:39:
84:03:2c:de:67:dc:58:a2:52:4b:43:21:dd:74:39:
f8:f7:63:d4:d0:34:16:2c:61:31:84:5f:81:1e:7b:
86:20:f6:71:a7:a1:9d:2c:b4:ad:c3:58:ea:f7:cb:
9c:f9:2c:a4:55:00:58:1b:19:b7:c2:d8:fd:83:d7:
90:aa:48:57:29:67:2d:b3:43:98:44:65:fb:f3:18:
1b:5a:b9:bd:4d:a9:29:db:da:af:81:76:49:bc:5f:
9f:40:ff:42:27:d1:cc:51:3e:68:7c:ff:7e:76:30:
11:ab:3d:6f:27:59:1a:c0:0a:f0:2b:14:76:cc:5d:
ec:42:54:07:c9:3b:df:fc:1a:df:03:a7:0b:ae:9e:
2e:e5:3d:8b:bf:ef:86:48:7d:37:95:5b:2e:bc:ae:
d5:cb:87:63:30:9c:2a:85:d5:14:ea:09:c9:ff:0e:
06:d7:b5:4f:f1:46:35:d6:01:19:84:71:cf:1f:84:
09:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:26:9B:BC:49:BA:C0:EE:C5:86:89:ED:49:FA:C1:9A:5B:16:50:73
X509v3 Authority Key Identifier:
keyid:BD:5D:46:B5:BF:E7:2F:2A:A1:18:8A:90:96:B1:0E:01:47:42:44:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:6d:d8:33:98:89:08:06:3b:5d:65:2d:5b:51:91:b7:19:c4:
d3:d1:ed:43:38:8f:77:bb:b7:73:9b:44:7d:c5:cd:56:e4:74:
32:82:97:bc:a0:1a:9d:70:07:17:8d:10:ac:84:63:7e:7f:eb:
23:1e:f5:cf:9c:88:90:05:5e:36:16:9a:59:09:df:81:04:69:
52:2a:ad:15:e6:3c:d2:8d:ad:70:3f:41:69:f7:b7:4f:d0:b9:
94:da:db:ba:19:1d:e0:46:39:0d:e7:70:22:e5:50:fa:64:15:
5d:fb:4d:d6:97:69:4d:40:ce:55:a1:b2:36:b0:14:b8:2e:3f:
8b:11:26:2d:a6:44:6d:bb:d8:f1:f8:a5:91:cb:6d:c3:89:58:
d2:8f:8c:2f:19:35:45:1a:e8:83:37:d4:4b:bd:0e:8a:09:e7:
04:0b:28:f2:88:02:92:2e:27:ef:59:40:c9:89:f4:a7:bf:96:
bd:82:b6:a6:8f:d0:48:b9:c6:09:6f:12:36:df:ae:3e:e9:9a:
89:e6:0b:1e:bb:15:b1:c5:37:e4:f5:15:12:d8:da:70:8c:92:
c9:0c:3c:e7:e9:ef:16:d0:40:6c:ae:5b:94:3e:f5:fc:43:d2:
e5:7f:c4:4d:73:8c:f9:97:c2:59:dc:fe:c2:b6:51:fb:6d:87:
65:17:a9:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 03:24:16 2025 by rpki-client